Going WAY WAY back to the orignal post I would like to add a comment on sessioning.

My WebApps rely heavily on sessioning too, but it is easy to get around the cookie issue. Cookies are nice, and I find about 92% of visitors to my main App have cookies enabled - provided the cookie domain and the browsed domain are identical. But you CAN maintain session state using parameters, you don't need to use cookies.